Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/48b50b-adfe-4dfb-ad80-103b206ba28b/1/2m0VWXQENnc6uDXFOWWu-p0X9gg.roa
File: 2m0VWXQENnc6uDXFOWWu-p0X9gg.roa (raw, json)
Hash identifier: SVTyyf/e4wV+OcmboKlGeYsOp0A/+B4FRa0Fc1PDcPg=
Subject key identifier: DA:6D:15:59:74:04:36:77:3A:B8:35:C5:39:65:AE:FA:9D:17:F6:08
Certificate issuer: /CN=f724cba521c080db72a6e54a1b8cf4495cbbc7d6
Certificate serial: 01838D53C1152E28D815413113D216EA0A9F
Authority key identifier: F7:24:CB:A5:21:C0:80:DB:72:A6:E5:4A:1B:8C:F4:49:5C:BB:C7:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9yTLpSHAgNtypuVKG4z0SVy7x9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/48b50b-adfe-4dfb-ad80-103b206ba28b/1/2m0VWXQENnc6uDXFOWWu-p0X9gg.roa
Signing time: Fri 30 Sep 2022 07:36:59 +0000
ROA not before: Fri 30 Sep 2022 07:36:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211894
IP address blocks: 185.203.113.0/24 maxlen: 24
2a0a:5480::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:8d:53:c1:15:2e:28:d8:15:41:31:13:d2:16:ea:0a:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f724cba521c080db72a6e54a1b8cf4495cbbc7d6
Validity
Not Before: Sep 30 07:36:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da6d1559740436773ab835c53965aefa9d17f608
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:cd:1a:9f:34:90:7d:78:c8:7f:9f:3a:1f:45:
e9:c9:b0:12:52:97:8c:de:6f:13:f2:25:46:51:db:
5c:2f:e0:41:fb:54:70:34:1c:d2:cc:ae:6d:25:1d:
d1:dd:be:54:b7:f3:41:01:e7:48:1a:91:dd:2f:17:
23:ea:41:09:e1:c6:57:23:0a:70:84:0e:25:09:87:
ea:8d:ce:1d:8a:d8:80:29:2c:b6:29:a2:3b:df:85:
c5:f5:f5:6b:e3:26:72:2d:bd:70:aa:8c:7b:db:04:
d5:36:a5:78:c1:35:16:d6:b2:fa:48:56:65:2e:38:
fe:23:62:e8:09:eb:9d:54:88:b1:f1:52:d2:27:ad:
f2:96:dd:ca:85:84:70:79:07:ba:e3:4e:ed:bf:5e:
79:21:cd:31:0b:08:3d:ee:fa:82:41:6e:5e:77:ed:
49:e2:b5:62:c9:76:af:04:8b:1e:46:90:62:e3:1d:
79:86:fd:2f:a4:e3:23:eb:e9:d5:e3:b4:56:28:c0:
c5:98:8a:50:5a:12:b7:3d:06:b9:f1:1d:2a:fc:fc:
26:0a:6c:a0:07:78:8f:59:38:6a:02:da:6c:83:b3:
bc:fc:90:26:2e:24:6c:64:a8:aa:6c:0d:94:ce:88:
d5:fb:e1:bd:6b:87:42:86:2d:44:9e:ea:12:2c:25:
8c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:6D:15:59:74:04:36:77:3A:B8:35:C5:39:65:AE:FA:9D:17:F6:08
X509v3 Authority Key Identifier:
keyid:F7:24:CB:A5:21:C0:80:DB:72:A6:E5:4A:1B:8C:F4:49:5C:BB:C7:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9yTLpSHAgNtypuVKG4z0SVy7x9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/48b50b-adfe-4dfb-ad80-103b206ba28b/1/2m0VWXQENnc6uDXFOWWu-p0X9gg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/48b50b-adfe-4dfb-ad80-103b206ba28b/1/9yTLpSHAgNtypuVKG4z0SVy7x9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.203.113.0/24
IPv6:
2a0a:5480::/29
Signature Algorithm: sha256WithRSAEncryption
3d:36:5e:d6:48:9f:3d:05:5c:64:14:25:79:33:a3:22:b8:a8:
b4:83:61:64:20:ba:7a:f4:c0:c3:66:37:ee:14:0b:1e:f8:73:
a9:20:54:92:00:36:0e:2e:91:e5:e9:87:87:9d:3a:a5:5f:f1:
56:89:1c:43:8d:bb:c9:0d:f3:fd:db:ec:0a:69:36:1e:08:39:
2f:c5:ec:c1:91:bd:be:61:af:a4:3f:fc:f8:42:96:b0:67:b9:
4d:27:9f:af:74:28:7e:d7:71:d1:11:50:39:a3:78:4a:a6:38:
0f:fb:43:82:ce:92:a1:a2:fc:48:f9:28:24:a1:5b:3b:14:1b:
59:cd:3a:3e:1f:df:f2:86:e0:75:63:ac:47:50:13:bb:cc:e0:
e9:c5:f6:f1:a8:e7:a9:5e:71:97:06:90:5c:92:22:70:20:91:
ac:87:82:24:dc:c8:a6:47:f9:1f:35:82:7b:6e:b2:21:b8:c0:
06:6a:56:78:46:be:cc:ee:9b:ba:d7:70:d7:ca:ff:4f:7b:eb:
48:e7:38:a0:72:2b:cb:5d:53:64:b4:17:36:ee:1f:1e:ea:2f:
67:dd:0a:2d:34:1e:83:03:9e:ac:e6:47:34:a5:eb:22:5b:3a:
de:e5:e8:2f:ed:01:ea:5e:65:6a:15:39:c7:14:4a:5f:f2:1f:
e4:cb:bc:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:38 2023 by rpki-client on console-ams.rpki-client.org